Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

6 Key Actions to Comply with Cybersecurity Regulations

NIS2, PCI DSS, GDPR, HIPAA or CMMC... this long list of acronyms reminds us that complying with cybersecurity regulations is crucial in today’s threat landscape to protect sensitive information and maintain trust in our organization. Moreover, non-compliance not only exposes companies to security risks, but can lead to significant financial penalties and reputational damage. Compliance also facilitates more agile audits.

The Complete Guide to Attack Surface Analysis: From Mapping to Mitigation

Attack surface analysis is the process of mapping out an organization’s attack surfaces. These consist of the set of attack vectors that an attacker could use to target an organization. Organizations have both external and internal attack surfaces. An external attack surface includes all potential attack vectors that could be used to gain initial access to an organization’s environment from the public Internet.

Human Factors in Cybersecurity in 2024

Humans are often regarded as the weakest link in a cybersecurity program. Whether resulting from manipulative cybersecurity tactics or limited cybersecurity awareness, human errors remain the most prevalent attack vectors in every information security program, no matter how sophisticated your cybersecurity stack may be.

Evolution of Scalper Bots Part 6: The Hidden Economy of Scalper Bot Licenses

Welcome back to The Evolution of Scalper Bots series. In our previous blog, we analyzed the rise of professional scalper bot ecosystems. This included cook groups, bots-as-a-service platforms, and retail scalping’s emergence. As technical advancements drove fierce competition, we unraveled the complex dynamics of this controversial industry.

How Immutable Backups Can Protect Your Business from Data Loss

In 2024, the demand for ransomware payments reached new and extreme highs, with the average cost of an extortion payment from a ransomware attack reaching $5.2 million. While traditional backups provide good data security, they are still vulnerable to ransomware and other cyberattacks. Another, more secure option to prevent a breach in your personal or business storage is immutable backups.

What is Privilege Escalation? An Introduction

In the realm of cybersecurity, understanding how unauthorized access can compromise sensitive systems is critical—this is where the concept of privilege escalation comes into play. In this article, we will look at what privilege escalation is, how it exploits vulnerabilities and best practices for protecting your organization against privilege escalation.

Weekly Cyber Security News 28/11/2024

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Breach affecting mostly youngsters. To be honest, I think many teens would be more on the ball with phishing than adults from what I’ve seen!

Kagi search engine founder Vladimir Prelovac explains the real costs of 'free' search

There isn’t much in life that’s actually free. This is particularly true for the “free” search engines and browsers we all use every day, according to Vladimir Prelovac, founder and CEO of Kagi, a subscription-based search engine. He started Kagi to address issues with user privacy and user experience caused by the current ad-based web economy.

AI Risk and Governance: Foundations of a Documented, Defensible Program

Given the many laws, frameworks and industry best practices surrounding artificial intelligence (AI), it’s not surprising that lawyers, compliance professionals and others charged with AI governance and compliance are seeking a starting point for AI guidelines. A solid foundation is vital to building a program that satisfies the growing matrix of requirements while allowing companies to simplify and execute their programs amid growing complexity and change. The U.S.